94.249.61.130 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Jordan

Internet Service Provider: Jordan Telecom Group

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Aug2222:31:36server4pure-ftpd:\(\?@94.249.61.130\)[WARNING]Authenticationfailedforuser[anonymous]Aug2222:31:40server4pure-ftpd:\(\?@94.249.61.130\)[WARNING]Authenticationfailedforuser[locanda-turisti]Aug2222:31:46server4pure-ftpd:\(\?@94.249.61.130\)[WARNING]Authenticationfailedforuser[locanda-turisti]Aug2222:31:51server4pure-ftpd:\(\?@94.249.61.130\)[WARNING]Authenticationfailedforuser[locanda-turisti]Aug2222:31:57server4pure-ftpd:\(\?@94.249.61.130\)[WARNING]Authenticationfailedforuser[locanda-turisti]Aug2222:32:01server4pure-ftpd:\(\?@94.249.61.130\)[WARNING]Authenticationfailedforuser[locanda-turisti]Aug2222:32:07server4pure-ftpd:\(\?@94.249.61.130\)[WARNING]Authenticationfailedforuser[locanda-turisti]Aug2222:32:11server4pure-ftpd:\(\?@94.249.61.130\)[WARNING]Authenticationfailedforuser[locanda-turisti]Aug2222:32:15server4pure-ftpd:\(\?@94.249.61.130\)[WARNING]Authenticationfailedforuser[locanda-turisti]Aug2222:32:20server4pure-ftpd:\(\?@94.249.61.130\)[WARNING]Authenticationfailedforuser[locanda-turisti]	2020-08-23 06:45:02

Type

Details

Datetime

attack

Aug2222:31:36server4pure-ftpd:\(\?@94.249.61.130\)[WARNING]Authenticationfailedforuser[anonymous]Aug2222:31:40server4pure-ftpd:\(\?@94.249.61.130\)[WARNING]Authenticationfailedforuser[locanda-turisti]Aug2222:31:46server4pure-ftpd:\(\?@94.249.61.130\)[WARNING]Authenticationfailedforuser[locanda-turisti]Aug2222:31:51server4pure-ftpd:\(\?@94.249.61.130\)[WARNING]Authenticationfailedforuser[locanda-turisti]Aug2222:31:57server4pure-ftpd:\(\?@94.249.61.130\)[WARNING]Authenticationfailedforuser[locanda-turisti]Aug2222:32:01server4pure-ftpd:\(\?@94.249.61.130\)[WARNING]Authenticationfailedforuser[locanda-turisti]Aug2222:32:07server4pure-ftpd:\(\?@94.249.61.130\)[WARNING]Authenticationfailedforuser[locanda-turisti]Aug2222:32:11server4pure-ftpd:\(\?@94.249.61.130\)[WARNING]Authenticationfailedforuser[locanda-turisti]Aug2222:32:15server4pure-ftpd:\(\?@94.249.61.130\)[WARNING]Authenticationfailedforuser[locanda-turisti]Aug2222:32:20server4pure-ftpd:\(\?@94.249.61.130\)[WARNING]Authenticationfailedforuser[locanda-turisti]

2020-08-23 06:45:02

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 94.249.61.130
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11430
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;94.249.61.130.			IN	A

;; AUTHORITY SECTION:
.			303	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020082201 1800 900 604800 86400

;; Query time: 68 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Aug 23 06:44:59 CST 2020
;; MSG SIZE  rcvd: 117

Host info

Host 130.61.249.94.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 130.61.249.94.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.29.159.167	attackspam	Feb 12 08:00:42 sso sshd[5455]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.29.159.167 Feb 12 08:00:43 sso sshd[5455]: Failed password for invalid user boulder from 222.29.159.167 port 33842 ssh2 ...	2020-02-12 16:47:20
51.91.212.80	attack	11 Feb 2020 06:22:43 SRC=51.91.212.80 DPT=443 09:03:59 SRC=51.91.212.80 DPT=993 11:02:14 SRC=51.91.212.80 DPT=9998 14:02:22 SRC=51.91.212.80 DPT=8081 15:11:42 SRC=51.91.212.80 DPT=444 15:27:07 SRC=51.91.212.80 DPT=4433 17:32:44 SRC=51.91.212.80 DPT=8881 17:56:31 SRC=51.91.212.80 DPT=8881 18:18:55 SRC=51.91.212.80 DPT=8443 20:07:15 SRC=51.91.212.80 DPT=6443 20:18:45 SRC=51.91.212.80 DPT=6443 23:49:06 SRC=51.91.212.80 DPT=465 23:52:38 SRC=51.91.212.80 DPT=465	2020-02-12 16:15:26
176.95.169.216	attackspambots	Feb 12 07:10:53 silence02 sshd[8081]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.95.169.216 Feb 12 07:10:55 silence02 sshd[8081]: Failed password for invalid user booboo from 176.95.169.216 port 59012 ssh2 Feb 12 07:13:53 silence02 sshd[8397]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.95.169.216	2020-02-12 16:30:40
213.142.151.192	attackbotsspam	2020-02-12T04:59:25.880828beta postfix/smtpd[16876]: NOQUEUE: reject: RCPT from unknown[213.142.151.192]: 450 4.7.1 Client host rejected: cannot find your reverse hostname, [213.142.151.192]; from= to= proto=ESMTP helo= 2020-02-12T05:09:26.608028beta postfix/smtpd[17118]: NOQUEUE: reject: RCPT from unknown[213.142.151.192]: 450 4.7.1 Client host rejected: cannot find your reverse hostname, [213.142.151.192]; from= to= proto=ESMTP helo= 2020-02-12T05:19:27.741178beta postfix/smtpd[17279]: NOQUEUE: reject: RCPT from unknown[213.142.151.192]: 450 4.7.1 Client host rejected: cannot find your reverse hostname, [213.142.151.192]; from= to= proto=ESMTP helo= ...	2020-02-12 16:12:42
103.217.121.205	attackbots	Unauthorized connection attempt from IP address 103.217.121.205 on Port 445(SMB)	2020-02-12 16:21:00
176.154.117.104	attackspam	Feb 12 05:54:36 icecube sshd[1220]: Failed password for invalid user pi from 176.154.117.104 port 44824 ssh2	2020-02-12 16:33:03
122.51.251.224	attack	Feb 12 05:55:06 serwer sshd\[27111\]: Invalid user ivan from 122.51.251.224 port 48246 Feb 12 05:55:06 serwer sshd\[27111\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.251.224 Feb 12 05:55:07 serwer sshd\[27111\]: Failed password for invalid user ivan from 122.51.251.224 port 48246 ssh2 ...	2020-02-12 16:07:21
193.112.191.228	attack	Feb 12 05:06:07 ws19vmsma01 sshd[32446]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.191.228 Feb 12 05:06:09 ws19vmsma01 sshd[32446]: Failed password for invalid user olsen from 193.112.191.228 port 35724 ssh2 ...	2020-02-12 16:11:45
149.202.75.164	attackspam	pages of adminer attempts such as: /wp-content/uploads/adminer.php	2020-02-12 16:39:50
221.156.117.184	attackspam	Feb 12 06:39:53 markkoudstaal sshd[15819]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.156.117.184 Feb 12 06:39:54 markkoudstaal sshd[15819]: Failed password for invalid user 123456123 from 221.156.117.184 port 37400 ssh2 Feb 12 06:49:01 markkoudstaal sshd[17376]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.156.117.184	2020-02-12 16:31:10
137.74.199.180	attackbotsspam	Feb 12 05:54:32 plex sshd[7506]: Invalid user cowgirl from 137.74.199.180 port 39732	2020-02-12 16:35:13
112.85.42.180	attackspam	2020-02-12T03:11:05.938290xentho-1 sshd[74841]: Failed password for root from 112.85.42.180 port 48127 ssh2 2020-02-12T03:10:59.396348xentho-1 sshd[74841]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.180 user=root 2020-02-12T03:11:01.619689xentho-1 sshd[74841]: Failed password for root from 112.85.42.180 port 48127 ssh2 2020-02-12T03:11:05.938290xentho-1 sshd[74841]: Failed password for root from 112.85.42.180 port 48127 ssh2 2020-02-12T03:11:10.067483xentho-1 sshd[74841]: Failed password for root from 112.85.42.180 port 48127 ssh2 2020-02-12T03:10:59.396348xentho-1 sshd[74841]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.180 user=root 2020-02-12T03:11:01.619689xentho-1 sshd[74841]: Failed password for root from 112.85.42.180 port 48127 ssh2 2020-02-12T03:11:05.938290xentho-1 sshd[74841]: Failed password for root from 112.85.42.180 port 48127 ssh2 2020-02-12T03:11:10.067483xent ...	2020-02-12 16:34:34
203.195.231.79	attackspam	(sshd) Failed SSH login from 203.195.231.79 (CN/China/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Feb 11 23:54:22 host sshd[45166]: Invalid user rosaleen from 203.195.231.79 port 36102	2020-02-12 16:40:49
165.22.109.112	attackspambots	Feb 12 05:54:49 sshd\[15392\]: Invalid user ghklein from 165.22.109.112Feb 12 05:54:51 sshd\[15392\]: Failed password for invalid user ghklein from 165.22.109.112 port 56648 ssh2 ...	2020-02-12 16:19:36
189.4.28.99	attackbots	Feb 11 22:24:25 web1 sshd\[30342\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.4.28.99 user=root Feb 11 22:24:27 web1 sshd\[30342\]: Failed password for root from 189.4.28.99 port 37646 ssh2 Feb 11 22:28:03 web1 sshd\[30652\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.4.28.99 user=root Feb 11 22:28:05 web1 sshd\[30652\]: Failed password for root from 189.4.28.99 port 60898 ssh2 Feb 11 22:31:41 web1 sshd\[30969\]: Invalid user steamcmd from 189.4.28.99 Feb 11 22:31:41 web1 sshd\[30969\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.4.28.99	2020-02-12 16:44:44

Recently Reported IPs

87.163.63.78	181.158.21.64	3.22.112.26	81.190.162.220
171.144.227.163	196.210.149.87	87.9.153.214	193.253.90.141
152.81.40.33	253.162.6.70	192.35.168.22	176.235.95.50
45.129.33.53	41.60.86.21	129.204.35.171	190.111.26.81
180.247.192.30	122.116.188.146	219.102.153.159	201.105.181.59